Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2023-1073 - CERT CVE
CVE-2023-1073
ID
CVE-2023-1073
Sažetak
A memory corruption flaw was found in the Linux kernel’s human interface device (HID) subsystem in how a user inserts a malicious USB device. This flaw allows a local user to crash or potentially escalate their privileges on the system.
Reference
http://www.openwall.com/lists/oss-security/2023/11/05/2
http://www.openwall.com/lists/oss-security/2023/11/05/3
https://bugzilla.redhat.com/show_bug.cgi?id=2173403
https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/id=b12fece4c64857e5fab4290bf01b2e0317a88456
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html
https://www.openwall.com/lists/osssecurity/2023/01/17/3
http://www.openwall.com/lists/oss-security/2023/11/05/2
http://www.openwall.com/lists/oss-security/2023/11/05/3
https://bugzilla.redhat.com/show_bug.cgi?id=2173403
https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/id=b12fece4c64857e5fab4290bf01b2e0317a88456
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html
https://www.openwall.com/lists/osssecurity/2023/01/17/3
CVSS
Base:
6.6
Impact:
5.9
Exploitability:
0.7
Pristup
Vektor
Složenost
Autentikacija
PHYSICAL
LOW
LOW
Impact
Povjerljivost
Cjelovitost
Dostupnost
HIGH
HIGH
HIGH
CVSS vektor
CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje
23-04-2025 - 17:16
Objavljeno
27-03-2023 - 21:15